CVE-1999-1384

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Oct 30, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-1384 is a vulnerability affecting the Indigo Magic System Tour in the systour package for IRIX 5.x through 6.3. This issue permits local users to elevate their privileges to root level. The vulnerability is exploited through a Trojan horse .exitops program that is triggered by the inst command executed by the RemoveSystemTour program. Successful exploitation results in unauthorized root access to the system. Users are advised to apply the available patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SGI IRAX

Affected Vendors

Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTFZ
https://www.cve.org/CVERecord?id=CVE-1999-1384
https://nvd.nist.gov/vuln/detail/CVE-1999-1384

Back to Vulnerability Database